Xbox password flaw exposed by five-year-old boy

4.6
A five-year-old boy who worked out a security vulnerability on Microsoft's Xbox Live service has been officially thanked by the company.

Kristoffer Von Hassel, from San Diego, figured out how to log in to his dad's account without the right password.
Microsoft has fixed the flaw, and added Kristoffer to its list of recognised security researchers.
In an interview with local news station KGTV, Kristoffer said: "I was like yea!"

The boy worked out that entering the wrong password into the log-in screen would bring up a second password verification screen.
Kristoffer discovered that if he simply pressed the space bar to fill up the password field, the system would let him in to his dad's account.

Kristoffer's name now appears on a page set up to thank people who have discovered problems with Microsoft products.
The company also gave him four free games, $50 (£30), and a year-long subscription to Xbox Live.

Posted:
Related Forum: Xbox Forum

Source: http://www.bbc.co.uk/news/technology-26879185

Related Articles

Comments

"Xbox password flaw exposed by five-year-old boy" :: Login/Create an Account :: 115 comments

If you would like to post a comment please signin to your account or register for an account.

HearthstonePosted:

That just goes to show how developed Microsoft's security network is! None the less congratulations to that little kid.

EventPosted:

I read about this earlier. This is great that this kid found this flaw. I hate how people are saying he "hacked" this and "hacked" that. It was a glitch guys. He got lucky. Credit to the kid for finding this as it could have turned out badly.

ZigsPosted:

Well, good for him for finding this and Microsoft gives him a very little amount for finding a flaw that could have turned out pretty bad lol. Of course.

xxRider702xxPosted:

I wonder how many other websites this will hapopen on

RebPosted:

Kristoffer said: "I was like yea!"

Legend.

FriskyPandaPosted:

Nemonium Hahahahaha Microsoft compromised by a 5 Year old? Says enough for me


Lol are you dumb? Just because he's 5 doesn't mean Microsoft is "dumb or shitty" lol sony *** boy

MajPosted:

Hahahahaha Microsoft compromised by a 5 Year old? Says enough for me

GibbityTreePosted:

Triceracops Honestly just entering random needs and letters then all spaces doesn't mean he's going anywhere. Yeah good find but seriously guys.


Yeah like come on, quit it lol.

METALSMOOTH1470Posted:

Ha Thats so peak for microsoft

JRMHPosted:

Smurfs I heard about this, I thought it was kinda funny. But I think they should've given the kid more to reward him because he discovered a big flaw.


To a 4 year old, thats a loooooot. Do you know how many gumballs you can get with $50???


Latest Downloads

Latest Tutorials